674 matches found
EUVD-2019-19992
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
CVE-2019-25626
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
CVE-2019-25626
River Past Cam Do 3.7.6 contains a local buffer overflow in the activation code input field. An attacker can craft a 608-byte payload (junk data + shellcode) and SEH overwrite values to trigger code execution when the activation dialog processes the input. This is a local, post-authentication sty...
CVE-2019-25626 River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
CVE-2019-25626
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
CVE-2019-25626 River Past Cam Do 3.7.6 Local Buffer Overflow in Activation Code
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
PT-2026-27360
River Past Cam Do 3.7.6 contains a local buffer overflow vulnerability in the activation code input field that allows local attackers to execute arbitrary code by supplying a malicious activation code string. Attackers can craft a buffer containing 608 bytes of junk data followed by shellcode and...
River Past Cam Do 代码问题漏洞
River Past Cam Do is a multimedia tool software for screen recording and video capture, developed by FlexHEX. Version 3.7.6 of River Past Cam Do contains a code vulnerability. This vulnerability stems from a local buffer overflow in the activation code input field, which could allow local attacke...
FP-Predictor - False Positive Prediction for Static Analysis Reports
Static Application Security Testing SAST tools play a vital role in modern software development by automatically detecting potential vulnerabilities in source code. However, their effectiveness is often limited by a high rate of false positives, which wastes developer's effort and undermines trus...
Security update for freerdp
This update for freerdp fixes the following issues: CVE-2026-24491: heap-use-after-free in videotimer bsc1257981. CVE-2026-24675: heap-use-after-free in urbselectinterface bsc1257982. CVE-2026-24676: heap-use-after-free in audioformatcompatible bsc1257983. CVE-2026-24677: heap-buffer-overflow in...
CVE-2026-24678 FreeRDP has a Heap-use-after-free in cam_v4l_stream_capture_thread
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite. This vulnerability is fixed in 3.22.0...
CVE-2026-24678
CVE-2026-24678 affects FreeRDP prior to 3.22.0. A capture thread sends sample responses using a freed channel callback after a device channel close, causing a use-after-free in ecam_channel_write. The issue is fixed in 3.22.0. Severity in the cited metric is high (CVSS v4.0: base 8.7; network att...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004029)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004029 advisory. An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to sen...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004300)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004300 advisory. An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to sen...
CVE-2022-38399
Missing protection mechanism for alternate hardware interface in SmaCam CS-QR10 all versions and SmaCam Night Vision CS-QR20 all versions allows an attacker to execute an arbitrary OS command by having the product connect to the product's specific serial connection...
CVE-2020-23512
VR CAM P1 Model P1 v1 has an incorrect access control vulnerability where an attacker can obtain complete access of the device from web remote without authentication...
CVE-2025-12463
An unauthenticated SQL Injection was discovered within the Geutebruck G-Cam E-Series Cameras through the Group parameter in the /uapi-cgi/viewer/Param.cgi script. This has been confirmed on the EFD-2130 camera running firmware version 1.12.0.19...
CVE-2025-12463
An unauthenticated SQL Injection was discovered within the Geutebruck G-Cam E-Series Cameras through the Group parameter in the /uapi-cgi/viewer/Param.cgi script. This has been confirmed on the EFD-2130 camera running firmware version 1.12.0.19...
EUVD-2025-37502
An unauthenticated SQL Injection was discovered within the Geutebruck G-Cam E-Series Cameras through the Group parameter in the /uapi-cgi/viewer/Param.cgi script. This has been confirmed on the EFD-2130 camera running firmware version 1.12.0.19...
CVE-2025-12463
Geutebruck G-Cam E-Series Cameras are affected by an unauthenticated SQL Injection via the Group parameter in /uapi-cgi/viewer/Param.cgi. The issue has been confirmed on the EFD-2130 with firmware 1.12.0.19. The root cause is insufficient validation of the Group parameter, enabling arbitrary SQL ...